Release notes

Hopefully this will be more or less the last big step before a release.

Not this release fixes a security problem, which can be seen as critical

The Views module is useful for creating lists of items in Drupal sites. Some filters incorrectly used Drupal's built-in database api, so they didn't escaped some arguments correctly. This vulnerability is mitigated by the fact that a site must have a view with this filter to be enabled in order to be exploited.

Changes since 7.x-3.0-rc1:

by dereine: use the bug fix from the relationship-access issue

Revert "Issue #1222324 by damz, agentrickard, bojanz, dereine: Find a proper way to have multiple access tags per view and support relationships."

Revert "#1222324 follow up by damz: Use the alias so apply the tag to the right part of the query"

#1222324 follow up by damz: Use the alias so apply the tag to the right part of the query

#1222324 by damz, agentrickard, bojanz, dereine: Find a proper way to have multiple access tags per view and support relationships.

#1331032 by dereine: Hide rewriting if the value of a field is actually empty by default. That's maybe causes some views but sure we are doomed anyway. Additional fix it let the custom block actually always display something

#1257376 by dereine: Don't run the preview on page load, but adding a seperate request for it.\n\nThis will catch a lot of possible issues with sql errors and can improve the speed of the editing, if you have unchecked the automatic-preview checkbox

rename image preset to image style

#1234414 by quicksketch: Support images styles in the user: picture field